I was hoping someone could give me some help, Im not a computer tec. just a average guy tired of spending money to people that can’t fix a problem.
I had my XP desktop worked on because of a virus. 5 days later and $70.00 for the repair now I get a pop up every 3 to 4 minutes with the attached picture. I called AVAST Tec Surport but they wanted $170.00 to fix problem. I can’t do that.
Thats some malware that wants to call home
Follow this guide and attach the logs from Malwarebytes, OTL and aswMBR: http://forum.avast.com/index.php?topic=53253.0
Windows XP is not getting anymore Updates and is very insecure now, Hackers collected Security leaks over the last months.
Its recommended to switch to Windows 7 or 8 if possible.
Stven can you please explain what attach the logs from Malwarebytes, OTL and aswMBR: means
Click the Attachments and other options function under the answer Box and select the logs to attach them.
(See screenshot)
Mine is in German but the placement is the same.
Just a little more in depth to what Steven said.
When you finish running the programs, they’ll produce logs. (MBAM=1, OTL=2 on first run and aswMBR=1). Following Stevens pictures, which is in (Dutch?) I believe. When you make your next post, there is a option called Attachments & Other Options. CLick it
Sorry, lol, thought that was dutch.
The picture is in german, Michael.
Ok Thank you both, I’m running the scan as we speak, I’ll keep you posted. so far it has found 3 objects and still running.
Monitoring, this may be an infected system file
OK it finished put I just got another pop up, also the 3 are quarantined it did not ask me to do a reboot should I reboot .
If its not asking for a reboot there is no need to reboot.
Save the log and attach it here later.
I’m running the OTL but forgot to past this in.
netsvcs
BASESERVICES
%SYSTEMDRIVE%*.exe
c:\program files (x86)\Google\Desktop
c:\program files\Google\Desktop
dir “%systemdrive%*” /S /A:L /C
/md5start
rpcss.dll
/md5stop
CREATERESTOREPOINT
Just abort the scan and run it from scratch please.
Be sure to attach the correct log.
OK Will do.
OK Here is the log.
Now please run aswMBR and attach the logs from aswMBR and Malwarebytes.
Then essexboy will check the logs.
Ok Steve
here is what I got.
Ok Steve here is what I got.
Essex is asleep. Check back tomorrow…
OK Thank You Will Do.
Hi there, I have two possibilities in mind so lets see which it is
Download and Install Combofix
Download ComboFix from one of the following locations:
Link 1
Link 2
VERY IMPORTANT !!! Save ComboFix.exe to your Desktop
- IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here
[*]Double click on ComboFix.exe & follow the prompts.
[*]Accept the disclaimer and allow to update if it asks
http://img.photobucket.com/albums/v706/ried7/NSIS_disclaimer_ENG.png
http://img.photobucket.com/albums/v706/ried7/NSIS_extraction.png
[*]When finished, it shall produce a log for you.
[*]Please include the C:\ComboFix.txt in your next reply.
Notes:
- Do not mouse-click Combofix’s window while it is running. That may cause it to stall.
- Do not “re-run” Combofix. If you have a problem, reply back for further instructions.
- If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.
Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now